83a877451d1ea25035a4481011ee41ff_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83a877451d1ea25035a4481011ee41ff_JaffaCakes118
Size

373KB
MD5

83a877451d1ea25035a4481011ee41ff
SHA1

fc29a355bff5dc2832edde1e32426238a4bbbc1f
SHA256

b56377fe4d510a00a06a087c926acf46afa97eb1e8e24b5d04292e33417a788d
SHA512

a337d4b1b301e6e822366edce0a52e887ff111f58de7ba0d536b9be9f86636925c420a4dc56f84207605b4a6c77da63d502926490203b977f9a219508dec4e4e
SSDEEP

6144:bYP/bh0yFkzq0rMGKUavMgcHECZn8EzERskvd96bDd63C2/2ZGGI:bY9HsZrMzUagHv8EKsy96bDdNs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83a877451d1ea25035a4481011ee41ff_JaffaCakes118

Files

83a877451d1ea25035a4481011ee41ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87d80fb1d1fa6823f4931a7c920dc53e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
ResetEvent
LoadLibraryW
GlobalUnlock
CreateThread
GetModuleHandleA
HeapCreate
GetComputerNameA
GetCurrentDirectoryA
lstrlenA
lstrcpyA
PulseEvent
FindClose
LocalFree
GetSystemTime
GetCommandLineW
CreateFileW
Sleep
CloseHandle
UnmapViewOfFile

user32

DrawMenuBar
CallWindowProcA
IsWindow
GetCaretPos
GetDC
FillRect
CreateIcon
DrawEdge
SetFocus
DispatchMessageA
CreateWindowExA
CheckRadioButton
GetDlgItem

cryptui

LocalEnroll
CryptUIDlgSelectStoreA
CryptUIDlgCertMgr
CryptUIDlgSelectCA
WizardFree

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 299KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ